335 matches found
Debian DLA-1531-1 : linux-4.9 security update
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. CVE-2018-6554 A memory leak in the irdabind function in the irda subsystem was discovered. A local user can take advantage of this flaw to cause a deni...
[SECURITY] [DLA 1531-1] linux-4.9 security update
Package : linux-4.9 Version : 4.9.110-3+deb9u5deb8u1 CVE ID : CVE-2018-6554 CVE-2018-6555 CVE-2018-7755 CVE-2018-9363 CVE-2018-9516 CVE-2018-10902 CVE-2018-10938 CVE-2018-13099 CVE-2018-14609 CVE-2018-14617 CVE-2018-14633 CVE-2018-14678 CVE-2018-14734 CVE-2018-15572 CVE-2018-15594 CVE-2018-16276...
SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2018:2776-1)
The SUSE Linux Enterprise 12 SP3 kernel was updated to 4.4.155 to receive various security and bugfixes. The following security bugs were fixed : CVE-2018-13093: Prevent NULL pointer dereference and panic in lookupslow on a NULL inode-iops pointer when doing pathwalks on a corrupted xfs image. Th...
CVE-2018-10902
It was found that the raw midi kernel driver does not protect against concurrent access which leads to a double realloc double free in sndrawmidiinputparams and sndrawmidioutputstatus which are part of sndrawmidiioctl handler in rawmidi.c file. A malicious local attacker could possibly use this f...
CVE-2018-10902
It was found that the raw midi kernel driver does not protect against concurrent access which leads to a double realloc double free in sndrawmidiinputparams and sndrawmidioutputstatus which are part of sndrawmidiioctl handler in rawmidi.c file. A malicious local attacker could possibly use this f...
Double free
It was found that the raw midi kernel driver does not protect against concurrent access which leads to a double realloc double free in sndrawmidiinputparams and sndrawmidioutputstatus which are part of sndrawmidiioctl handler in rawmidi.c file. A malicious local attacker could possibly use this f...
CVE-2018-10902
It was found that the raw midi kernel driver does not protect against concurrent access which leads to a double realloc double free in sndrawmidiinputparams and sndrawmidioutputstatus which are part of sndrawmidiioctl handler in rawmidi.c file. A malicious local attacker could possibly use this f...
CVE-2018-10902
CVE-2018-10902 is a Linux kernel local privilege-escalation flaw in the raw MIDI driver. The issue arises from a race on concurrent access in the snd_rawmidi_ioctl() path (snd_rawmidi_input_params and snd_rawmidi_output_status), causing a double-free/double-realloc in the rawmidi.c handler. Explo...
CVE-2018-10902
It was found that the raw midi kernel driver does not protect against concurrent access which leads to a double realloc double free in sndrawmidiinputparams and sndrawmidioutputstatus which are part of sndrawmidiioctl handler in rawmidi.c file. A malicious local attacker could possibly use this f...
CVE-2018-10902
It was found that the raw midi kernel driver does not protect against concurrent access which leads to a double realloc double free in sndrawmidiinputparams and sndrawmidioutputstatus which are part of sndrawmidiioctl handler in rawmidi.c file. A malicious local attacker could possibly use this f...
jpegoptim Denial of Service Vulnerability
jpegoptim is an open source JPEG format image compression/optimization tool . A security vulnerability exists in the jpegoptim.c file in version 1.4.5 of jpegoptim, which stems from the program failing to use the 'realloc' and 'free' functions efficiently. A remote attacker can exploit this...
CVE-2018-11416
jpegoptim.c in jpegoptim 1.4.5 fixed in 1.4.6 has an invalid use of realloc and free, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact...
CVE-2018-11416
jpegoptim.c in jpegoptim 1.4.5 fixed in 1.4.6 has an invalid use of realloc and free, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact...
UBUNTU-CVE-2018-11416
jpegoptim.c in jpegoptim 1.4.5 fixed in 1.4.6 has an invalid use of realloc and free, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact...
CVE-2018-11416
jpegoptim.c in jpegoptim 1.4.5 fixed in 1.4.6 has an invalid use of realloc and free, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact...
CVE-2018-11416
jpegoptim.c in jpegoptim 1.4.5 fixed in 1.4.6 has an invalid use of realloc and free, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact...
CVE-2018-11416
CVE-2018-11416 affects jpegoptim 1.4.5 (fixed in 1.4.6). The vulnerability stems from an invalid use of realloc() and free() in jpegoptim.c, allowing remote attackers to cause a denial of service (application crash) or potentially other impact. Affected: jpegoptim prior to 1.4.6. Remediation: upg...
Heap Viewer - An IDA Pro Plugin To Examine The Glibc Heap, Focused On Exploit Development
An IDA Pro plugin for now to examine the heap, focused on exploit development. Currently only supports glibc malloc ptmalloc2. Requirements IDA Pro = 6.9 Tested on glibc = 2.26 GraphView for linked lists bins/tcache Magic utils: Unlink merge info Fake fastbin finder House of force helper Useful...
DEBIAN-CVE-2017-18199
reallocsymlink in rock.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service NULL Pointer Dereference via a crafted iso file...
UBUNTU-CVE-2017-18199
reallocsymlink in rock.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service NULL Pointer Dereference via a crafted iso file...